package com.tkmybatis.hfy.utils;

import org.apache.commons.codec.binary.Base64;
import org.apache.commons.io.IOUtils;
import lombok.extern.slf4j.Slf4j;
import javax.crypto.Cipher;
import java.io.ByteArrayOutputStream;
import java.security.*;
import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.InvalidKeySpecException;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;
import java.util.HashMap;
import java.util.Map;

@Slf4j
public class RSAUtils {
	
	public static final String CHARSET = "UTF-8";
    public static final String RSA_ALGORITHM = "RSA";


    public static Map<String, String> createKeys(int keySize){
        //为RSA算法创建一个KeyPairGenerator对象
        KeyPairGenerator kpg;
        try{
            kpg = KeyPairGenerator.getInstance(RSA_ALGORITHM);
        }catch(NoSuchAlgorithmException e){
            throw new IllegalArgumentException("No such algorithm-->[" + RSA_ALGORITHM + "]");
        }

        //初始化KeyPairGenerator对象,密钥长度
        kpg.initialize(keySize);
        //生成密匙对
        KeyPair keyPair = kpg.generateKeyPair();
        //得到公钥
        Key publicKey = keyPair.getPublic();
        String publicKeyStr = Base64Util.encodeData(new String(publicKey.getEncoded()));
        //得到私钥
        Key privateKey = keyPair.getPrivate();
        String privateKeyStr = Base64Util.encodeData(new String(privateKey.getEncoded()));
        Map<String, String> keyPairMap = new HashMap<String, String>();
        keyPairMap.put("publicKey", publicKeyStr);
        keyPairMap.put("privateKey", privateKeyStr);

        return keyPairMap;
    }

    /**
     * 得到公钥
     * @param publicKey 密钥字符串（经过base64编码）
     * @throws Exception
     */
    public static RSAPublicKey getPublicKey(String publicKey) throws NoSuchAlgorithmException, InvalidKeySpecException {
        //通过X509编码的Key指令获得公钥对象
        KeyFactory keyFactory = KeyFactory.getInstance(RSA_ALGORITHM);
        X509EncodedKeySpec x509KeySpec = new X509EncodedKeySpec(Base64.decodeBase64(publicKey));
        RSAPublicKey key = (RSAPublicKey) keyFactory.generatePublic(x509KeySpec);
        return key;
    }

    /**
     * 得到私钥
     * @param privateKey 密钥字符串（经过base64编码）
     * @throws Exception
     */
    public static RSAPrivateKey getPrivateKey(String privateKey) throws NoSuchAlgorithmException, InvalidKeySpecException {
        //通过PKCS#8编码的Key指令获得私钥对象
        KeyFactory keyFactory = KeyFactory.getInstance(RSA_ALGORITHM);
        PKCS8EncodedKeySpec pkcs8KeySpec = new PKCS8EncodedKeySpec(Base64.decodeBase64(privateKey));
        RSAPrivateKey key = (RSAPrivateKey) keyFactory.generatePrivate(pkcs8KeySpec);
        return key;
    }

    /**
     * 公钥加密
     * @param data
     * @param publicKey
     * @return
     */
    public static String publicEncrypt(String data, RSAPublicKey publicKey){
        try{
            Cipher cipher = Cipher.getInstance(RSA_ALGORITHM);
            cipher.init(Cipher.ENCRYPT_MODE, publicKey);
            return Base64.encodeBase64URLSafeString(rsaSplitCodec(cipher, Cipher.ENCRYPT_MODE, data.getBytes(CHARSET), publicKey.getModulus().bitLength()));
        }catch(Exception e){
            throw new RuntimeException("加密字符串[" + data + "]时遇到异常", e);
        }
    }

    /**
     * 私钥解密
     * @param data
     * @param privateKey
     * @return
     */

    public static String privateDecrypt(String data, RSAPrivateKey privateKey){
        try{
            Cipher cipher = Cipher.getInstance(RSA_ALGORITHM);
            cipher.init(Cipher.DECRYPT_MODE, privateKey);
            return new String(rsaSplitCodec(cipher, Cipher.DECRYPT_MODE, Base64.decodeBase64(data), privateKey.getModulus().bitLength()), CHARSET);
        }catch(Exception e){
            throw new RuntimeException("解密字符串[" + data + "]时遇到异常", e);
        }
    }

    /**
     * 私钥加密
     * @param data
     * @param privateKey
     * @return
     */

    public static String privateEncrypt(String data, RSAPrivateKey privateKey){
        try{
            Cipher cipher = Cipher.getInstance(RSA_ALGORITHM);
            cipher.init(Cipher.ENCRYPT_MODE, privateKey);
            return Base64.encodeBase64URLSafeString(rsaSplitCodec(cipher, Cipher.ENCRYPT_MODE, data.getBytes(CHARSET), privateKey.getModulus().bitLength()));
        }catch(Exception e){
            throw new RuntimeException("加密字符串[" + data + "]时遇到异常", e);
        }
    }

    /**
     * 公钥解密
     * @param data
     * @param publicKey
     * @return
     */

    public static String publicDecrypt(String data, RSAPublicKey publicKey){
        try{
            Cipher cipher = Cipher.getInstance(RSA_ALGORITHM);
            cipher.init(Cipher.DECRYPT_MODE, publicKey);
            return new String(rsaSplitCodec(cipher, Cipher.DECRYPT_MODE, Base64.decodeBase64(data), publicKey.getModulus().bitLength()), CHARSET);
        }catch(Exception e){
            throw new RuntimeException("解密字符串[" + data + "]时遇到异常", e);
        }
    }

    private static byte[] rsaSplitCodec(Cipher cipher, int opmode, byte[] datas, int keySize){
        int maxBlock = 0;
        if(opmode == Cipher.DECRYPT_MODE){
            maxBlock = keySize / 8;
        }else{
            maxBlock = keySize / 8 - 11;
        }
        ByteArrayOutputStream out = new ByteArrayOutputStream();
        int offSet = 0;
        byte[] buff;
        int i = 0;
        try{
            while(datas.length > offSet){
                if(datas.length-offSet > maxBlock){
                    buff = cipher.doFinal(datas, offSet, maxBlock);
                }else{
                    buff = cipher.doFinal(datas, offSet, datas.length-offSet);
                }
                out.write(buff, 0, buff.length);
                i++;
                offSet = i * maxBlock;
            }
        }catch(Exception e){
            throw new RuntimeException("加解密阀值为["+maxBlock+"]的数据时发生异常", e);
        }
        byte[] resultDatas = out.toByteArray();
        IOUtils.closeQuietly(out);
        return resultDatas;
    }



public static void main (String[] args) throws Exception {
//    Map<String, String> keyMap = RSAUtils.createKeys(1024);
//    String  publicKey = keyMap.get("publicKey");
//    String  privateKey = keyMap.get("privateKey");
//   log.info("公钥: \n\r" + publicKey);
//   log.info("私钥： \n\r" + privateKey);
//
//
//
//
//
//   log.info("公钥加密——私钥解密");
//    String str="userId="+"HANDAN@HQ.CMCC"+"&userName="+"12345667778888999"+"&roleId="+"000100001";
//   log.info("\r明文：\r\n" + str);
//    String encodedData = RSAUtils.publicEncrypt(str, RSAUtils.getPublicKey(publicKey));
//   log.info("密文：\r\n" + encodedData);
//    String decodedData = RSAUtils.privateDecrypt(encodedData, RSAUtils.getPrivateKey(privateKey));
//   log.info("解密后文字: \r\n" + decodedData);

    String publicKey="MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZXSm2qJo1sRhFQdeGvHo04r_QSm4avwKRBF0Kenqb0ZFgPKa594aIuosUSv-VRCMP6X6kQErxvqf_ahSCqsVFiOXA0Z-W6FWSiwkAZOkgtHRnbDdUEdFmOOEcZ8_t3lJ21Ozb6rZzGDnMaao4DW4wy6DxuE0wcXcowiUaLxakjwIDAQAB";


    String str="userId=422127197009200015&userName=曾效君&roleId=3&DepId=00250035000000000000&DepName=驻马店分公司&corporationId=00250035000000000000&corporationName=驻马店分公司";
//
//    String encodedData = RSAUtils.publicEncrypt(str, RSAUtils.getPublicKey(publicKey));
    String encodedData = "nX_cXRf3jNO3KqR0hnRz29xoSaftu_tsjk-lffctdxmC39EH469teCQOWxj71H3gbtQeVNsvS5o7kJ8vuQYsyLrgahBbJShApSWboNE-Laprvdxg9wpp72oiGwEt2boibR4is3h-rb6-o5BmmRgYeqBBRFB6I4qlb8p580z-SdQ";
   log.info(encodedData);

    String privateKey="MIICdQIBADANBgkqhkiG9w0BAQEFAASCAl8wggJbAgEAAoGBANldKbaomjWxGEVB14a8ejTiv9BKbhq_ApEEXQp6epvRkWA8prn3hoi6ixRK_5VEIw_pfqRASvG-p_9qFIKqxUWI5cDRn5boVZKLCQBk6SC0dGdsN1QR0WY44Rxnz-3eUnbU7NvqtnMYOcxpqjgNbjDLoPG4TTBxdyjCJRovFqSPAgMBAAECgYA9-MbU0hstZbFyxYPqYUBCZcekXiQoMf9MUz8npqXgWQ6mroQmj0DnKLBQd9WIvCV2-u5lbAMyC1aghqEUZBXb53Fj4FlMh6szom6dRMeR6giCFFbmuwotrVkuBlL8lrRDamZjcS-YHdNzi_NGqX31OemlBTcCsnQ-QTBO5OurWQJBAP8JAmxMJGeGMUozzWGSNebP5pIcf9heC0V1AZqH3f-B-ZJoH-S7poTLCveKb5pMRDtkDGUU3NHYkD3vbNnwnqsCQQDaL6ukmBAMqHqlWjYFlrLhxusTm4GYdBJUSgMNKxX_tk4suSDsDqXBdathyA_ZEmenSNECOGV4JfNDy1uFlkGtAkBe2cTy7iaj8f6m8Dk0TqKJY00Hjl3l5KQggvHDvUBNZNOjJeKmuTunK7S6d9wl8LN3uy_48BdoXDjZMBC1xY3dAkAP8LOljsZ9ZkGvmuufdOcUv6elAxNww-oi5lVavO8ag4MqmUvicx-BBsvClQ8zWLjh69v5QY2IPZ2MMms5U0TxAkA3UR9FmQCHGMbYSVHF7_nENw6uhxo46NCjEKZ_cfvda1AcgmCojxsGXbMRIcf708wWEc1zT8vnfWsDXzebdRMO";

    String decodedData = RSAUtils.privateDecrypt(encodedData, RSAUtils.getPrivateKey(privateKey));
   log.info(decodedData);
}
	
	

}
